Security Advisory

CVE-2023-0602

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-31 09:37:33

Last updated 2024-08-02 05:17:50

Assigner WPScan

State PUBLISHED

Description

The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugins administrative page, which allows reflected XSS attacks targeting administrators to happen.

← Browse all CVEs View on cve.org ↗